$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215907.roa File: AS215907.roa (raw, json) Hash identifier: onSA0MNSp/dK1L8XcnY6slJ2Emd4sGUeXFnFsl8QvhE= Subject key identifier: E0:F0:DA:BF:5D:93:CD:05:B8:BE:9E:B2:B3:59:AF:53:65:45:EB:54 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5BCA5C35CA1390F00D64C2335530C31E5073D407 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215907.roa Signing time: Thu 07 Nov 2024 23:45:30 +0000 ROA not before: Thu 07 Nov 2024 23:40:30 +0000 ROA not after: Thu 06 Nov 2025 23:45:30 +0000 asID: 215907 IP address blocks: 2a06:9f81:2900::/40 maxlen: 48 2a06:9f81:3200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ca:5c:35:ca:13:90:f0:0d:64:c2:33:55:30:c3:1e:50:73:d4:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 7 23:40:30 2024 GMT Not After : Nov 6 23:45:30 2025 GMT Subject: CN=E0F0DABF5D93CD05B8BE9EB2B359AF536545EB54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e1:a1:6d:1a:e5:4a:23:c9:92:70:7a:1a:cc: 5a:93:1e:0e:90:81:88:7d:4c:25:ce:73:66:16:55: e4:35:1d:d2:5a:5e:43:04:0c:09:b2:45:c1:a6:fb: 6c:4f:38:34:b7:6c:45:02:c4:24:fc:b2:01:95:fd: 07:c2:ef:50:b5:d8:fc:fa:62:01:71:e7:e4:53:0b: 19:9b:c0:45:a8:9d:47:ae:1b:f2:1b:2a:68:96:72: 11:0d:74:2b:04:ba:4b:cc:4d:af:03:9a:64:1c:76: 5f:c9:c2:ca:9e:6b:b8:3c:78:7c:3e:68:e6:7b:27: cc:8f:28:25:a6:3a:fb:e0:ca:f4:65:25:5c:34:21: ec:cc:d5:9e:61:6e:18:21:7d:1b:bd:b6:8a:ba:f4: a8:13:ce:cf:62:08:18:fb:d9:10:98:f0:40:79:88: 9d:d0:74:4e:79:68:04:41:c9:53:8c:f6:46:cf:6c: 5e:63:df:7a:51:55:09:d0:39:1c:b8:af:7a:d1:4c: 8a:eb:ea:83:19:20:46:a3:6a:3a:15:cd:31:eb:67: f2:02:4c:a5:10:eb:0c:59:75:9c:3c:9b:cc:de:89: dc:07:aa:58:bf:17:35:9f:8f:08:5e:64:92:26:d2: 84:a9:b1:68:f8:89:48:9a:e3:90:05:11:bd:e7:bc: 51:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F0:DA:BF:5D:93:CD:05:B8:BE:9E:B2:B3:59:AF:53:65:45:EB:54 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS215907.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2900::/40 2a06:9f81:3200::/40 Signature Algorithm: sha256WithRSAEncryption 25:a7:20:49:7a:be:62:bc:42:3b:37:51:a0:bc:9a:8a:62:60: ad:3f:80:60:0e:d1:97:2b:ea:bd:a8:be:5f:60:c9:e5:aa:48: 26:aa:65:1c:31:02:86:17:99:ef:a4:88:81:ce:bd:5f:88:59: 11:47:16:fa:a0:28:2e:39:83:11:40:32:ac:a7:02:48:9c:32: 5e:60:f2:a7:68:51:04:cb:7b:f2:8c:c1:8a:9e:78:e9:f6:76: 72:d7:81:73:b3:bc:72:fc:15:c1:4b:3d:23:f4:eb:f0:a5:65: 5c:ba:33:97:f3:31:37:46:bb:15:5e:3c:41:af:15:3a:9c:09: 9d:2a:67:2b:38:87:0a:4a:e0:d3:09:a3:3d:70:a1:f0:07:c3: 02:bb:ee:b5:d9:1f:3c:8c:79:20:ea:26:e1:f5:4c:0b:dc:66: b4:52:d4:f5:f6:c8:6d:7d:9a:35:3e:a9:18:2c:96:c8:df:3a: 60:b5:ad:aa:54:75:76:34:29:60:13:3a:7b:d3:a3:f7:a8:f3: 6d:5b:e5:5b:45:83:2c:b4:4c:64:7c:8b:9e:ae:45:13:57:de: 80:92:b8:3e:6d:26:20:9b:ef:42:92:d8:4b:90:68:cb:a7:8d: 73:32:52:bc:e3:dc:5f:c9:35:f2:69:7e:ad:db:fc:d2:e6:45: d0:0b:e8:2e -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUW8pcNcoTkPANZMIzVTDDHlBz1AcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDExMDcyMzQwMzBaFw0yNTExMDYyMzQ1MzBaMDMxMTAvBgNV BAMTKEUwRjBEQUJGNUQ5M0NEMDVCOEJFOUVCMkIzNTlBRjUzNjU0NUVCNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR4aFtGuVKI8mScHoazFqTHg6Q gYh9TCXOc2YWVeQ1HdJaXkMEDAmyRcGm+2xPODS3bEUCxCT8sgGV/QfC71C12Pz6 YgFx5+RTCxmbwEWonUeuG/IbKmiWchENdCsEukvMTa8DmmQcdl/Jwsqea7g8eHw+ aOZ7J8yPKCWmOvvgyvRlJVw0IezM1Z5hbhghfRu9toq69KgTzs9iCBj72RCY8EB5 iJ3QdE55aARByVOM9kbPbF5j33pRVQnQORy4r3rRTIrr6oMZIEajajoVzTHrZ/IC TKUQ6wxZdZw8m8zeidwHqli/FzWfjwheZJIm0oSpsWj4iUia45AFEb3nvFGpAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQU4PDav12TzQW4vp6ys1mvU2VF61QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE1OTA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgafgSkDBgAqBp+BMjANBgkqhkiG9w0BAQsF AAOCAQEAJacgSXq+YrxCOzdRoLyaimJgrT+AYA7Rlyvqvai+X2DJ5apIJqplHDEC hheZ76SIgc69X4hZEUcW+qAoLjmDEUAyrKcCSJwyXmDyp2hRBMt78ozBip546fZ2 cteBc7O8cvwVwUs9I/Tr8KVlXLozl/MxN0a7FV48Qa8VOpwJnSpnKziHCkrg0wmj PXCh8AfDArvutdkfPIx5IOom4fVMC9xmtFLU9fbIbX2aNT6pGCyWyN86YLWtqlR1 djQpYBM6e9Oj96jzbVvlW0WDLLRMZHyLnq5FE1fegJK4Pm0mIJvvQpLYS5Boy6eN czJSvOPcX8k18ml+rdv80uZF0AvoLg== -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org